๐ IAIK JCE Side Channel Attack
๐ก Newskategorie: IT Security Tools
๐ Quelle: packetstormsecurity.com
IAIK JCE is a provider for the Java Cryptography Extension and has an issue where the way that some of the computations involved in the signature generation are carried out introduce a side channel that leaks timing information about the ephemeral number k. ...